great script.. i got mine to give them 15 points per dollar donated.. pretty nice script.. worked perfect first try
Could you post your script. Would be nice
great script.. i got mine to give them 15 points per dollar donated.. pretty nice script.. worked perfect first try
@bump
people who donate don't receive the points..
<input type="hidden" name="notify_url" value="http://www.YOURADDRESS.com/ipn/ipn.php">
Gz, with your script I can give points to myself by poisoning the request..
Security: 1/10
Code: 1/10 ( learn OOP plzzz )
Overall: 1/10
Thanks.
Then gz your brain and your knowledge huehueue, script is 99.99% safe hueeue
<?
$mysql_host = 'localhost'; //Leave at localhost
$mysql_user = 'root'; //DB User
$mysql_pass = ''; //DB Pass
$mysql_db = ''; //DB Name
$custom = stripslashes(ucwords(strtolower(trim($_REQUEST['custom']))));
$receiver_email = $_REQUEST['receiver_email'];
$payment_status = $_REQUEST['payment_status'];
// connect db
$db = mysql_connect($mysql_host, $mysql_user, $mysql_pass);
mysql_select_db($mysql_db, $db);
if ($payment_status == "Completed" & $receiver_email == "[email protected]") {
$query = "SELECT premium_points FROM accounts WHERE accounts.name = '$custom'";
$result = mysql_query($query);
$prem = mysql_fetch_array($result);
$points = $prem['premium_points'] + 12;
// $points = mysql_query($prem)
$qry2 = "UPDATE accounts SET premium_points = '$points' WHERE accounts.name = '$custom'";
$result2 = mysql_query($qry2);
}
else
{
echo("Error.");
}
?>
<input type="hidden" name="notify_url" value="http://67.171.227.26/ots.4za.pl/ipn/ipn.php">
<input type="hidden" name="return" value="http://www.YOURADDRESS.com">